security {

    active = true

    loginUserDomainClass = "AuthUser"
    authorityDomainClass = "AuthRole"
    requestMapClass = "AuthRequestmap"

    defaultRole = 'ROLE_CUSTOMER'

    useRequestMapDomainClass = false
    requestMapString = """
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
PATTERN_TYPE_APACHE_ANT
/images/**= IS_AUTHENTICATED_ANONYMOUSLY
/js/**= IS_AUTHENTICATED_ANONYMOUSLY
/css/**= IS_AUTHENTICATED_ANONYMOUSLY
/login/**= IS_AUTHENTICATED_ANONYMOUSLY
/backdoor.gsp=ROLE_ADMIN
/**=IS_AUTHENTICATED_FULLY
    """

}
